## Configuração para naofo.de
server {
  listen 80;
  listen [::]:80;
  server_name nao.usem.xyz;
  root /var/www/git/nao.usem.xyz/;
  index index.php index.html index.htm; 
  location / {
#    proxy_pass http://apache2;
    proxy_pass http://entwickler;
    proxy_set_header X-Forwarded-Proto $scheme;
    proxy_set_header Host $host;
    proxy_set_header X-Real-IP $remote_addr;
    proxy_set_header X-Forwarded-For $remote_addr;
  }
  location ~ /\.ht {
    deny all;
  }
}
server {
  listen 80;
  listen [::]:80;
  server_name *.nao.usem.xyz;
  return 302 http://nao.usem.xyz$request_uri;
}
server {
  listen 80;
  listen [::]:80;
  server_name naofode.xyz;
  root /var/www/git/naofode.xyz/;
  index index.php index.html index.htm; 
  location / {
#    proxy_pass http://apache2;
    proxy_pass http://entwickler;
    proxy_set_header X-Forwarded-Proto $scheme;
    proxy_set_header Host $host;
    proxy_set_header X-Real-IP $remote_addr;
    proxy_set_header X-Forwarded-For $remote_addr;
  }
  location ~ /\.ht {
    deny all;
  }
}
server {
  listen 80;
  listen [::]:80;
  server_name *.naofode.xyz;
  return 301 http://naofode.xyz$request_uri;
}
server {
  listen 80;
  listen [::]:80;
  server_name nfde.xyz;
  root /var/www/git/nfde.xyz/;
  index index.php index.html index.htm; 
  location / {
#    proxy_pass http://apache2;
    proxy_pass http://entwickler;
    proxy_set_header X-Forwarded-Proto $scheme;
    proxy_set_header Host $host;
    proxy_set_header X-Real-IP $remote_addr;
    proxy_set_header X-Forwarded-For $remote_addr;
  }
  location ~ /\.ht {
    deny all;
  }
}
server {
  listen 80;
  listen [::]:80;
  server_name naofode.partidopirata.org;
  root /var/www/git/nao.usem.xyz/;
  index index.php index.html index.htm; 
  location / {
#    proxy_pass http://apache2;
#    proxy_pass http://naofode;
    proxy_pass http://entwickler;
    proxy_set_header X-Forwarded-Proto $scheme;
    proxy_set_header Host $host;
    proxy_set_header X-Real-IP $remote_addr;
    proxy_set_header X-Forwarded-For $remote_addr;
  }
  location ~ /\.ht {
    deny all;
  }
}

server {
  listen 80;
  listen [::]:80;
  server_name *.nfde.xyz;
  return 301 http://nfde.xyz$request_uri;
}
server {
  listen 80;
  listen [::]:80;
  server_name naofo.de;
  return 307 http://naofode.partidopirata.org$request_uri;
}
server {
  listen 80;
  listen [::]:80;
  server_name *.naofo.de;
  return 301 http://naofo.de$request_uri;
}
server {
  listen 80;
  listen [::]:80;
  server_name nfde.tk;
  return 307 http://naofode.partidopirata.org$request_uri;
}
server {
  listen 80;
  listen [::]:80;
  server_name *.nfde.tk;
  return 301 http://nfde.tk$request_uri;
}

## SSL
#server {
#  listen 443 ssl;
# listen [::]:443 ssl;
# ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
# ssl_prefer_server_ciphers on;
# ssl_ciphers "EECDH+AESGCM:EDH+AESGCM:AES256+EECDH:AES256+EDH";
# ssl_ecdh_curve secp384r1;
# ssl_session_cache shared:SSL:10m;
# ssl_session_tickets off;
# ssl_stapling on;
# ssl_stapling_verify on;
# resolver 208.67.220.220 208.67.222.222 valid=300s;
# resolver_timeout 5s;
# add_header Strict-Transport-Security "max-age=63072000; includeSubdomains; preload";
# add_header X-Frame-Options SAMEORIGIN;
# add_header X-Content-Type-Options nosniff;
# ssl_certificate /etc/letsencrypt/live/nao.usem.xyz/fullchain.pem;
# ssl_certificate_key /etc/letsencrypt/live/nao.usem.xyz/privkey.pem;
# ssl_trusted_certificate /etc/letsencrypt/live/nao.usem.xyz/chain.pem;
# 
# server_name nao.usem.xyz;
# root /var/www/git/nao.usem.xyz/;
# index index.php index.html index.htm; 
# location / {
# proxy_pass https://apache4;
# proxy_set_header Host $host;
# proxy_set_header X-Real-IP $remote_addr;
# proxy_set_header X-Forwarded-For $remote_addr;
# }
# location ~ /\.ht {
# deny all;
# }
# }
# server {
# listen 443 ssl;
# listen [::]:443 ssl;
# ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
# ssl_prefer_server_ciphers on;
# ssl_ciphers "EECDH+AESGCM:EDH+AESGCM:AES256+EECDH:AES256+EDH";
# ssl_ecdh_curve secp384r1;
# ssl_session_cache shared:SSL:10m;
# ssl_session_tickets off;
# ssl_stapling on;
# ssl_stapling_verify on;
# resolver 208.67.220.220 208.67.222.222 valid=300s;
# resolver_timeout 5s;
# add_header Strict-Transport-Security "max-age=63072000; includeSubdomains; preload";
# add_header X-Frame-Options SAMEORIGIN;
# add_header X-Content-Type-Options nosniff;
# ssl_certificate /etc/letsencrypt/live/naofode.xyz/fullchain.pem;
# ssl_certificate_key /etc/letsencrypt/live/naofode.xyz/privkey.pem;
# ssl_trusted_certificate /etc/letsencrypt/live/naofode.xyz/chain.pem;
# 
# server_name naofode.xyz;
# root /var/www/git/naofode.xyz/;
# index index.php index.html index.htm; 
# location / {
# proxy_pass https://apache4;
# proxy_set_header Host $host;
# proxy_set_header X-Real-IP $remote_addr;
# proxy_set_header X-Forwarded-For $remote_addr;
# }
# location ~ /\.ht {
# deny all;
# }
# }
# server {
# listen 443 ssl;
# listen [::]:443 ssl;
# ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
# ssl_prefer_server_ciphers on;
# ssl_ciphers "EECDH+AESGCM:EDH+AESGCM:AES256+EECDH:AES256+EDH";
# ssl_ecdh_curve secp384r1;
# ssl_session_cache shared:SSL:10m;
# ssl_session_tickets off;
# ssl_stapling on;
# ssl_stapling_verify on;
# resolver 208.67.220.220 208.67.222.222 valid=300s;
# resolver_timeout 5s;
# add_header Strict-Transport-Security "max-age=63072000; includeSubdomains; preload";
# add_header X-Frame-Options SAMEORIGIN;
# add_header X-Content-Type-Options nosniff;
# ssl_certificate /etc/letsencrypt/live/nfde.xyz/fullchain.pem;
# ssl_certificate_key /etc/letsencrypt/live/nfde.xyz/privkey.pem;
# ssl_trusted_certificate /etc/letsencrypt/live/nfde.xyz/chain.pem;
# 
# server_name nfde.xyz;
# root /var/www/git/nfde.xyz/;
# index index.php index.html index.htm; 
# location / {
# proxy_pass https://apache4;
# proxy_set_header Host $host;
# proxy_set_header X-Real-IP $remote_addr;
# proxy_set_header X-Forwarded-For $remote_addr;
# }
# location ~ /\.ht {
# deny all;
# }
# }
server {
  listen 443 ssl;
  listen [::]:443 ssl;
  ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
  ssl_prefer_server_ciphers on;
  ssl_ciphers "EECDH+AESGCM:EDH+AESGCM:AES256+EECDH:AES256+EDH";
  ssl_ecdh_curve secp384r1;
  ssl_session_cache shared:SSL:10m;
  ssl_session_tickets off;
  ssl_stapling on;
  ssl_stapling_verify on;
  resolver 208.67.220.220 208.67.222.222 valid=300s;
  resolver_timeout 5s;
  add_header Strict-Transport-Security "max-age=63072000; includeSubdomains; preload";
  add_header X-Frame-Options SAMEORIGIN;
  add_header X-Content-Type-Options nosniff;
  ssl_certificate /etc/letsencrypt/live/partidopirata.org/fullchain.pem;
  ssl_certificate_key /etc/letsencrypt/live/partidopirata.org/privkey.pem;
  ssl_trusted_certificate /etc/letsencrypt/live/partidopirata.org/chain.pem;

  server_name naofode.partidopirata.org;
  root /var/www/git/nao.usem.xyz/;
  index index.php index.html index.htm; 
  location / {
#    proxy_pass http://apache2;
    proxy_pass http://entwickler;
    proxy_set_header X-Forwarded-Proto $scheme;
    proxy_set_header Host $host;
    proxy_set_header X-Real-IP $remote_addr;
    proxy_set_header X-Forwarded-For $remote_addr;
  }
  location ~ /\.ht {
    deny all;
  }
}

